Security Directory

M

MRP-Informatics, spol. s r.o.

mrp.cz

56

MRP-Informatics, spol. s r.o. operates the website www.mrp.cz, offering professional accounting software solutions tailored for entrepreneurs, small businesses, and accounting firms primarily in the Czech Republic. Their flagship products include the MRP-K/S accounting system, a visual accounting system, payroll and HR software, and electronic filing tools. The company positions itself as a market leader with over 100,000 installations, emphasizing comprehensive and user-friendly software solutions with ongoing support and updates. Technically, the website is built on Joomla CMS with modern frontend frameworks such as Bootstrap and Font Awesome, enhanced by SP Page Builder for layout management. It integrates third-party services like Tawk.to for live chat support and Google Analytics for user tracking. The site is mobile-optimized and implements GDPR-compliant cookie consent mechanisms, reflecting a mature digital infrastructure. From a security perspective, the site enforces HTTPS and uses CSRF tokens for AJAX requests, indicating good baseline security practices. However, it lacks advanced security headers and explicit security or incident response policies. No vulnerabilities or exposed sensitive data were detected in the provided content. The absence of WHOIS data reduces transparency but does not significantly detract from the site's legitimacy given the professional presentation and business indicators. Overall, www.mrp.cz demonstrates a solid business and technical foundation with good security hygiene and privacy compliance. Strategic improvements in security policy transparency and enhanced HTTP security headers would further strengthen its posture.

S

Seyfor, a. s.

money.cz

48

Money.cz is the official website for Money S3, an accounting software product developed and offered by Seyfor, a. s., a Czech technology company. The website targets small and medium-sized businesses, freelancers, non-profits, and accounting firms, providing comprehensive tools for invoice management, payroll, inventory, and tax compliance. The site is well-positioned in the Czech market with a strong customer base of over 20,000 users. The business model revolves around software sales, subscriptions, and value-added services including training and support.

K

Keloc

keloc.cz

41

Keloc is a small Czech Republic-based company specializing in IT sales and service, web development, digital printing, hosting, and economic software solutions. The company targets businesses and individuals seeking comprehensive IT and web services. Their market position appears local or regional with a focus on personalized service. Technically, the website is built on WordPress using the Divi theme, incorporating standard analytics and tracking tools such as Google Analytics and Google Tag Manager. The site is mobile-optimized and presents a professional design with clear navigation. Security posture is moderate with HTTPS enabled but lacks security headers and visible privacy or terms policies, which are areas for improvement. The absence of WHOIS data reduces trust signals but does not necessarily indicate malicious intent. Overall, the website is functional and professional but could enhance trust and compliance by adding privacy policies, security headers, and clearer contact information.

6

6K spol. s r.o.

6k.cz

50

6K spol. s r.o. is a Czech company specializing in modular accounting and economic software solutions tailored for small and medium-sized businesses and accounting firms. Established in 1992, the company offers a suite of software modules including accounting, invoicing, payroll, asset management, and inventory control, complemented by services such as installation, training, and customer support. The company maintains a strong market presence with over 1000 satisfied clients and notable references including KPMG and BDO. Technically, the website employs a modern JavaScript stack with various libraries and integrates third-party services for analytics and customer engagement. Security posture is moderate with HTTPS usage and cookie consent implemented, but lacks comprehensive security headers and published security policies. The absence of WHOIS data and a privacy policy page presents compliance and trust challenges. Overall, the website is professional, user-friendly, and content-rich, supporting the company's credibility in the accounting software market.

D

Direct auto

direct-auto.cz

78

Direct auto is a medium-sized authorized car dealership operating in the Czech Republic, specializing in new and used vehicles from brands such as Škoda, Volkswagen, Fiat, and Mazda. The company maintains multiple locations and offers authorized servicing with online appointment booking, positioning itself as a trusted regional automotive provider. Technically, the website leverages the Shopify platform with modern JavaScript frameworks including React and Vue.js, and integrates various analytics and marketing tools such as Google Analytics, Microsoft Clarity, and Visual Website Optimizer. The site demonstrates good privacy compliance with a comprehensive cookie consent mechanism and GDPR-aligned privacy policy. Security posture is strong with HTTPS enforced and appropriate security headers, though explicit security and incident response policies are not publicly available. The absence of WHOIS data reduces domain trust somewhat, but the overall digital maturity and business presence indicate a legitimate and professional operation.

G

Grant Thornton International Ltd.

grantthornton.global

80

Grant Thornton International Ltd. operates as a global professional services network specializing in audit, tax, and advisory services. It serves privately held businesses, public interest entities, and public sector organizations, positioning itself as one of the largest independent accounting and consulting networks worldwide. The website reflects a mature enterprise with consistent branding and comprehensive service descriptions, targeting a professional audience in the finance sector. Technically, the site employs modern analytics and marketing technologies such as Google Analytics, Microsoft Clarity, Optimizely, and OneTrust for privacy compliance. The site is mobile-optimized and demonstrates good SEO and accessibility practices. Security-wise, the website enforces HTTPS and uses cookie consent mechanisms but lacks explicit security headers and published security policies or incident response information, which could be improved. WHOIS data is privacy protected, typical for large enterprises, and no suspicious patterns were detected. Overall, the site is professional, trustworthy, and compliant with GDPR, though it could enhance transparency around security and incident response.

A

ARROWS, advokátní kancelář

arws.cz

48

ARROWS is a Czech-based law firm specializing in business and real estate legal services with an international footprint covering the Czech Republic, EU, Asia, Africa, and America. The firm is recognized for its expertise in AI and tax services, holding multiple prestigious awards including 'Právnická firma roku' from 2016 through 2024 and recognition by Legal 500. Their website reflects a professional and consistent brand image targeting business clients and real estate professionals. The firm emphasizes comprehensive legal and tax advisory services under one roof, facilitating efficient client service.

E

EMERGE, a.s.

emerge.cz

50

EMERGE, a.s. is a Czech manufacturing and logistics company with nearly 30 years of experience, serving primarily automotive and industrial clients. The company holds multiple certifications including IATF 16949, ISO 9001, ISO 14001, ISO 50001, and TISAX, underscoring its commitment to quality and security standards. The website reflects a professional business presence with clear service offerings and international customer reach. Technically, the site uses modern JavaScript libraries, Google Analytics, and Google Maps API, and is mobile optimized with a cookie consent mechanism in place. Security posture is generally good with HTTPS enforced, though explicit security headers are not detected and no incident response contacts or vulnerability disclosures are published. The absence of WHOIS data is a notable concern for domain legitimacy, though the website content and certifications support a trustworthy business identity. Overall, the site is well-structured, compliant with privacy regulations, and suitable for its B2B audience.

S

Safetica Technologies Inc.

safetica.com

77

Safetica Technologies Inc. operates a professional website focused on intelligent data security solutions including data loss prevention, insider risk management, cloud security, and compliance. The company targets security leaders such as CISOs, CIOs, and IT professionals in medium to large enterprises globally. The website is well-designed, mobile-optimized, and rich in content, demonstrating a mature digital presence with multiple language options and industry-recognized certifications. Technically, the site employs modern JavaScript libraries, analytics tools, and security best practices including HTTPS and security headers, ensuring a secure and performant user experience. However, the absence of WHOIS registration data and lack of explicit contact or incident response information slightly reduce transparency and trust. Overall, the site presents a strong security posture with room for improvement in privacy disclosures and direct contact availability.

G

GAS - TM s.r.o.

gas.cz

48

GAS - TM s.r.o. operates the website gas.cz as a specialist retailer and service provider in heating and cooking technology, primarily serving the Czech and Slovak markets. The company offers a broad product catalog including gas boilers, stoves, water heaters, and related accessories, supported by physical retail presence and multiple partner pickup locations. The website demonstrates a mature e-commerce model with integrated customer support and installation services. Technically, the site employs a modern tech stack with Bootstrap, jQuery, and various marketing and analytics tools, ensuring a responsive and user-friendly experience. Security posture is solid with HTTPS, cookie consent management, and CAPTCHA protections, though some security headers are missing and older jQuery versions are used. Privacy compliance is well addressed with clear GDPR and cookie policies. The absence of WHOIS data slightly impacts trust but is mitigated by transparent contact information and business legitimacy indicators. Overall, the site is professional, secure, and trustworthy with room for technical and security enhancements.

ASPP (Asociace stavitelů plynovodů a produktovodů z.s.) is a professional association established in 1998 in the Czech Republic, focused on setting quality standards and certifying companies involved in the construction and reconstruction of gas and product pipelines. The association currently comprises 42 member companies employing approximately 2,500 workers with a significant annual turnover, operating both domestically and internationally. The website serves as an informational and educational platform for members and interested parties, offering documentation, membership details, and training programs. Technically, the site is built on WordPress 4.7.31 with common libraries like jQuery and Bootstrap, and uses Google Analytics for visitor tracking. While the site is functional and professionally presented, it uses outdated software versions and lacks advanced security headers and cookie consent mechanisms, which are areas for improvement. Security posture is moderate with HTTPS enabled but could benefit from updates and enhanced security practices. Overall, the domain registration and WHOIS data align well with the business claims, indicating legitimacy and trustworthiness.

S

Spatial Systems Inc

spatial.io

10

Spatial Systems Inc operates Spatial.io, a leading platform enabling creators and brands to build immersive 3D social experiences across web, mobile, and VR/AR platforms. Founded in 2017 and headquartered in New York, the company offers no-code tools and a Unity SDK to facilitate creation of virtual classrooms, experiential marketing, and corporate training environments. With over 2 million creators and partnerships with major global brands, Spatial.io is positioned as a prominent player in the immersive technology and virtual experience market. The website demonstrates a mature technical infrastructure leveraging modern frameworks such as React and Next.js, integrated with analytics and payment technologies like Google Analytics and Stripe. The platform supports cross-device publishing, enhancing accessibility and user engagement.

Č

Český olympijský tým

olympic.cz

9

The website www.olympijskytym.cz serves as the official online presence of the Czech Olympic Team, providing comprehensive information about Olympic events, athletes, educational programs, and related projects. It targets Czech sports enthusiasts, athletes, educators, and youth, positioning itself as an authoritative source for Olympic-related content in the Czech Republic. The site offers rich multimedia content, event histories, and promotes Olympic values through various initiatives. Technically, the website employs modern web technologies including JavaScript libraries, Google Tag Manager, and tracking tools such as Hotjar and Facebook Pixel, indicating a mature digital infrastructure. The design is responsive and accessible, with good SEO practices and clear navigation. Security-wise, the site uses HTTPS and avoids exposing sensitive data, but lacks visible security headers and explicit privacy or cookie policies, which are areas for improvement. The absence of WHOIS data reduces transparency and trust slightly, though the official branding and content quality support legitimacy. Overall, the site is professional, content-rich, and well-positioned but would benefit from enhanced privacy compliance and security disclosures.

N

Náš REGION

nasregion.cz

57

Náš REGION is a Czech regional news media platform providing current information about events in municipalities and city districts around Prague and other Czech regions. Established in 2005, it serves a general audience interested in local news, culture, sports, and public affairs. The website uses WordPress CMS with a modern technology stack including Google Analytics, Google Tag Manager, and Seznam Ads for monetization. It employs a GDPR-compliant consent management platform (UniConsent) to manage user privacy preferences. The site demonstrates good SEO practices with structured data and meta tags, and it is mobile-optimized with a clear navigation structure. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though some security headers could be improved. No explicit privacy policy or terms of service pages were detected in the provided content, which is a potential compliance gap. Overall, the website appears trustworthy and professionally maintained, with moderate to good technical maturity and compliance.

I

Innova Healthcare a.s.

i-hc.cz

42

Innova Healthcare a.s. is a Czech healthcare group providing a broad range of specialized medical services including gynecology, orthopedics, ophthalmology, radiology, and assisted reproduction. The company operates multiple clinics and healthcare facilities across the Czech Republic, targeting patients seeking modern, professional, and comprehensive healthcare. Their market position is supported by a network of subsidiaries and partner clinics, with a focus on quality and patient-centered care. Technically, the website is built on WordPress with a modern tech stack including jQuery, Swiper.js, and various analytics and marketing tools such as Google Analytics, Facebook Pixel, Smartlook, and Hotjar. The site is mobile-optimized, SEO-friendly, and includes cookie consent mechanisms compliant with GDPR. Hosting and domain registration are consistent with the company's Czech location. Security posture is good with HTTPS enforced and use of reCAPTCHA on forms, though some security headers could be improved. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is strong with clear policies and consent mechanisms. Contact information is comprehensive and transparent. Overall, the website presents a professional, trustworthy, and well-maintained digital presence for a healthcare provider. Strategic recommendations include enhancing security headers, publishing a formal security policy, and maintaining regular audits of third-party scripts to ensure ongoing security and compliance.

C

CARBOUNION BOHEMIA, spol. s r.o.

carbounion.cz

59

CARBOUNION BOHEMIA is a well-established holding company founded in 1998, operating primarily in the energy and transport sectors within Central Europe. The group comprises over 25 companies engaged in energy commodity trading, infrastructure construction, and railway freight transport. The company holds a strong market position, evidenced by its rankings in Czech Top 100 and Czech 100 Best lists. The website presents comprehensive business information, including subsidiaries, financial indicators, and recent news updates, targeting energy sector businesses and industrial clients. Technically, the website is built on the Solidpixels CMS platform, utilizing modern web technologies such as Google Fonts, Facebook Pixel, Google Analytics, and Swiper.js for enhanced user experience. The site is mobile-optimized with good SEO practices and includes cookie consent mechanisms aligned with GDPR requirements. However, some accessibility features could be improved. From a security perspective, the website enforces HTTPS and uses secure forms with validation and AJAX. While no critical vulnerabilities were detected, the absence of explicit security policies, incident response information, and vulnerability disclosure reduces transparency. The lack of WHOIS data for the domain is a notable concern, impacting domain trustworthiness despite the professional appearance and content of the site. Overall, CARBOUNION BOHEMIA's website reflects a mature business with solid digital presence and compliance posture, though improvements in security transparency and domain registration clarity are recommended to enhance trust and risk management.

G

Gopass

gopass.travel

66

Gopass.travel is a professional digital platform specializing in the sale and booking of tickets and accommodations for mountain resorts, water parks, amusement parks, golf resorts, and related experiences primarily in Central Europe. The platform integrates a cashback program (goX) and membership benefits (365.Gopass), enhancing customer loyalty and engagement. Additionally, Gopass offers real estate investment opportunities linked to tourism destinations, positioning itself as a multifaceted player in the hospitality and leisure sector. The website is well-designed, mobile-optimized, and supports multiple languages, targeting a broad audience of tourists and investors. Technically, it leverages modern JavaScript frameworks, CDN hosting, and standard analytics and cookie consent tools, indicating a mature digital infrastructure. Security posture is good with HTTPS and cookie consent, though explicit security headers and detailed privacy policies are not evident in the provided data. WHOIS data is unavailable due to malformed responses, but the website's professionalism and content quality suggest legitimacy. Overall, Gopass.travel is a credible and well-positioned platform in its market niche.

I

invelt - s.r.o.

invelt.com

58

invelt - s.r.o. operates as an authorized dealer and service provider for BMW, MINI, ALPINA, and BMW Motorrad in the Czech Republic, with a market presence spanning over 30 years. The company offers a comprehensive portfolio of new and used vehicles, servicing, financing, and lifestyle accessories, targeting premium automotive customers primarily in Prague and Plzeň. The website reflects a mature digital presence with extensive product catalogs, configurators, and e-commerce integration. Technically, the site employs modern JavaScript libraries, Google Tag Manager, and analytics tools, ensuring good performance and mobile optimization. Security posture is solid with HTTPS and domain verification mechanisms, though security headers and incident response information could be improved. The absence of WHOIS registration data raises concerns about domain legitimacy, impacting overall trust. Strategic recommendations include enhancing security headers, publishing incident response contacts, and clarifying domain registration details to improve business credibility and compliance.

S

Spaneco ltd.

spaneco.com

43

Spaneco ltd. is a technology service provider specializing in the development of multilingual websites, online configurators, and content management systems catering to a diverse clientele ranging from freelancers to international corporations. The company positions itself as a provider of comprehensive digital solutions with a focus on multilingual and multimedia web development. The website demonstrates a professional design with good navigation and mobile optimization, leveraging modern technologies such as Google Analytics, Google Tag Manager, and Google reCAPTCHA v3 to enhance user experience and security. However, the absence of WHOIS registration data raises concerns about domain legitimacy and ownership transparency. Security measures are partially implemented with HTTPS and CAPTCHA, but additional security headers and policies are recommended to strengthen the security posture. Privacy compliance is basic, with a cookie consent mechanism present but lacking explicit privacy and terms of service documentation. Overall, the website is functional and professional but would benefit from enhanced transparency and security documentation to improve trustworthiness and compliance.

P

PERI

peri.cloud

61

PERI is a globally recognized manufacturer specializing in formwork and scaffolding solutions, with a history dating back to 1969. This website serves as the regional presence for PERI in Georgia, operated through its partner Citadeli Company, which acts as the regional distributor. The site provides information about PERI's products and services tailored for the Georgian market, targeting construction professionals and companies. The business model leverages regional partnerships to extend market reach and maintain local customer engagement. Technically, the website employs modern web technologies including JavaScript, Google Tag Manager, and Google Analytics for tracking and marketing purposes. The site is served over HTTPS with a professional design and good mobile optimization, though it lacks explicit CMS identification and some advanced accessibility features. SEO practices are adequately implemented with proper meta tags and Open Graph data. From a security perspective, the website benefits from HTTPS and domain transfer protection but lacks DNSSEC and security headers, which are recommended to enhance security posture. No privacy or cookie policies are present, indicating compliance gaps with GDPR and related regulations. Contact information is clearly provided, but no incident response or security policy details are published. Overall, the website is professional and trustworthy for its intended business purpose but would benefit from improved privacy compliance and enhanced security configurations to reduce risk and increase user trust.

I

IO Technologies

onthe.io

69

IO Technologies operates a website focused on providing real-time content analytics for digital publishers. The company positions itself as an innovative provider of dashboards that help publishers improve content, grow readership, and increase revenue. The website is built on the Wix platform and integrates common marketing and analytics tools such as Google Analytics, Google Tag Manager, and Intercom for customer engagement. The technical infrastructure reflects a modern SaaS approach but relies heavily on Wix's ecosystem. Security posture is moderate with HTTPS usage but lacks explicit security headers and privacy policies. The absence of WHOIS data raises concerns about domain registration legitimacy, which impacts overall trust. No contact or compliance information is visible, limiting transparency. Overall, the site is professional and safe but requires improvements in privacy compliance and domain legitimacy to enhance trustworthiness.

P

Projekt Nisa, s.r.o.

nisaliberec.cz

54

Obchodní centrum Nisa Liberec operates as a regional shopping center in the Czech Republic, offering a wide range of retail shops, dining options, and services including parking and event hosting. The website is professionally designed with clear navigation and multilingual support, targeting local shoppers and visitors. Technically, the site uses modern JavaScript frameworks and integrates Google Analytics and Tag Manager for tracking, alongside a robust cookie consent mechanism ensuring GDPR compliance. Security posture is strong with HTTPS enforced and no visible vulnerabilities, although explicit security headers and a security policy page are absent. The lack of WHOIS data limits domain trust assessment, but the website content and social media presence support business legitimacy. Overall, the site presents a trustworthy and user-friendly digital presence for the shopping center.

A

Agentura Paseo, s.r.o.

paseo.cz

61

Agentura Paseo, s.r.o. is a Czech Republic-based online marketing agency specializing in comprehensive digital marketing solutions including PPC, RTB advertising, SEO, social media marketing, and content marketing. The company operates a network of leisure-focused portals to target active audiences planning leisure activities. Their website demonstrates a professional digital presence with clear service offerings and contact information. The technical infrastructure is based on the Solidpixels CMS platform, utilizing modern JavaScript libraries and third-party marketing and analytics tools such as Google Analytics, Google Tag Manager, Smartsupp Chat, and Leady tracking. The website is mobile-optimized and provides cookie consent mechanisms aligned with GDPR requirements. Security posture is generally good with HTTPS enforced and no exposed sensitive data; however, the absence of security headers and explicit incident response information suggests room for improvement. The lack of WHOIS data reduces domain trustworthiness, warranting further verification. Overall, the website is professional, secure, and compliant with privacy standards, serving a small-sized media sector business.

Č

Česká obec sokolská

sokol.eu

48

Česká obec sokolská is a large, well-established non-profit organization in the Czech Republic focused on promoting sports, culture, and community engagement. With a membership base of approximately 160,000 across more than 1,000 units, it offers a wide range of sports and cultural activities, educational programs, and community events. The website reflects this mission with rich content, event calendars, and project descriptions. Technically, the site uses modern web technologies including Bootstrap, jQuery, and integrates Google Analytics and Facebook SDK for tracking and marketing. It is served over HTTPS with cookie consent mechanisms in place, indicating a moderate level of digital maturity. However, the absence of a privacy policy and terms of service pages represents a compliance gap. Security posture is generally good with HTTPS and some best practices, but lacks explicit security headers and vulnerability disclosure information. Overall, the site is professional and trustworthy but would benefit from improved privacy and security documentation.

M

Město Hluboká nad Vltavou

hluboka.cz

51

Město Hluboká nad Vltavou operates an official municipal website focused on promoting tourism, local culture, events, and services in the town of Hluboká nad Vltavou, Czech Republic. The site serves as a comprehensive portal for visitors and residents, offering information on activities, gastronomy, accommodation, transport, and local attractions such as the Hluboká Castle and the South Bohemian Zoo. The website is well-branded with consistent municipal identity and integrates social media channels to engage its audience. Technically, the website employs modern web technologies including HTML5, CSS3, JavaScript, jQuery, and integrates Google Tag Manager and Google Analytics for tracking. It features responsive design and lazy loading for performance optimization. However, it lacks some security best practices such as security headers and visible privacy and terms policies, which could be improved to enhance compliance and user trust. From a security perspective, the site uses HTTPS with good SSL configuration but does not expose security headers or incident response contacts. No vulnerabilities or sensitive data exposures were detected in the HTML content. The absence of WHOIS data reduces domain trustworthiness, but the official nature of the site and its content mitigate concerns. Overall, the website presents a professional and trustworthy digital presence for the municipal government with room for improvement in privacy transparency and security hardening. Strategic recommendations include publishing privacy and terms policies, implementing security headers, and providing clear incident response contacts to strengthen compliance and security posture.

J

Jihočeský kraj

kraj-jihocesky.cz

64

Jihočeský kraj operates as the official regional government portal for the South Bohemian Region of the Czech Republic, providing comprehensive information and services to residents, businesses, and stakeholders. The website offers detailed sections on regional administration, public contracts, EU funding, citizen services, and organizational contacts, positioning itself as a trusted source of regional governance information. Technically, the site is built on Drupal 10, leveraging modern web technologies including Google Analytics and Facebook Pixel for analytics and marketing insights. The site is mobile-optimized, accessible, and SEO-friendly, reflecting a mature digital infrastructure. Security-wise, the website enforces HTTPS and implements GDPR-compliant cookie consent mechanisms, though it lacks some advanced security headers and explicit security policies. Overall, the domain registration and website content align well, indicating a legitimate and trustworthy government entity. Strategic improvements in security headers and incident response disclosures would further enhance the security posture and trust.

R

RAYNET s.r.o.

raynetcrm.com

83

RAYNET s.r.o. operates the website raynetcrm.com, offering a cloud-based CRM platform designed to streamline sales and business processes for medium to large sales teams across various industries. Established in 2011 and headquartered in Ostrava, Czech Republic, RAYNET CRM provides key services including AI-assisted productivity tools, mobile applications, reporting, forecasting, and automation features. The company positions itself as a trusted CRM provider with a global reach, serving clients in over 104 countries. The website reflects a mature digital presence with modern web technologies such as React and Next.js, hosted on AWS infrastructure, ensuring scalability and reliability. From a technical perspective, the website demonstrates strong digital maturity with fast performance, mobile optimization, and good SEO practices. Security posture is robust, leveraging HTTPS, AWS security standards, and offering two-factor authentication, although explicit security headers could be enhanced. Privacy compliance is well addressed with comprehensive policies and GDPR adherence, including a dedicated Data Protection Officer contact. The site integrates analytics and marketing tools responsibly, maintaining user privacy. Overall, the security posture is solid with no evident vulnerabilities or suspicious activities. The domain registration is consistent with the business claims, showing a long-standing presence and stable ownership. The website content is professional, safe, and targeted at a general business audience. Strategic recommendations include enhancing security header implementation, publishing a vulnerability disclosure policy, and improving incident response visibility to further strengthen trust and compliance.

P

PŘEDVÝBĚR.CZ a.s.

predvyber.cz

49

PŘEDVÝBĚR.CZ a.s. is a Czech personnel agency specializing in recruitment services, offering efficient candidate sourcing and selection with a promise to deliver initial candidates within 5 working days. The company targets employers seeking employees and job seekers, operating with a one-time fee model rather than recurring salary-based fees. With over 17 years of market presence, it holds a medium-sized position in the Czech recruitment sector, supported by client testimonials and a broad client base. Technically, the website employs modern frontend technologies such as Bootstrap, AOS, and Swiper, and integrates Google Analytics and Leady tracking for marketing and analytics purposes. The site is mobile-optimized and provides a good user experience with clear navigation and professional design. Security-wise, HTTPS is implied, and cookie consent mechanisms are implemented, but explicit security headers and detailed security policies are absent. WHOIS data is unavailable, which raises some concerns about domain registration transparency, though the website content and business information appear legitimate. Overall, the site scores well in content quality, technical implementation, privacy compliance, and business credibility, with room for improvement in security posture and WHOIS transparency.

G

GOLDEN ORANGE

goldenorange.cz

47

Golden Orange is a Czech-based digital agency specializing in custom web development, e-commerce, mobile applications, online marketing, bespoke software development, intelligent chatbots, and photography services. The company targets businesses and municipalities seeking tailored digital solutions and has a portfolio featuring municipal clients and corporate testimonials, indicating a solid regional presence. The website is built on Joomla CMS and incorporates modern web technologies such as jQuery, Bootstrap, and Google Analytics, reflecting a moderate level of digital maturity. The presence of an AI chatbot script suggests innovation in service offerings. Security posture is moderate; while HTTPS is presumably enabled (not explicitly confirmed), no security headers were detected, and no privacy policy or terms of service pages were found, indicating areas for compliance improvement. The absence of WHOIS data limits domain trust assessment, but the website content and client references support legitimacy. Overall, the site is professional and functional but would benefit from enhanced security and compliance transparency.

M

Meteopress s. r. o.

meteopress.cz

54

Meteopress s. r. o. operates a comprehensive Czech weather forecasting website providing current weather conditions, hourly and 14-day forecasts, meteorological radar data, live webcams, and weather-related articles. The company targets the general public in the Czech Republic and offers business weather services, positioning itself as a reputable media entity in meteorology. Technically, the website leverages modern frameworks such as SvelteKit, integrates Google Fonts, Font Awesome, and uses analytics tools like Google Analytics and Hotjar. The site is well-optimized for mobile and SEO, with fast performance and good accessibility. Security posture is solid with HTTPS enforced and no exposed sensitive data, though explicit security headers and vulnerability disclosure mechanisms are absent. Privacy and cookie policies are comprehensive and GDPR compliant. Overall, the domain WHOIS data is unavailable, likely due to privacy protection, but the website content and business presence indicate legitimacy. Strategic recommendations include enhancing security headers, publishing security policies, and providing clearer contact information for security incidents.

C

Cognito.CZ, s.r.o.

pincity.cz

60

PinCity is a Czech Republic-based platform focused on aggregating municipal sentiment data and urban development information on a single map. The platform is supported by European Union funding and targets municipalities, regional planners, and government entities. The website is professionally designed, multilingual, and provides a contact form for inquiries. Technically, the site uses Cloudflare for DNS and CDN services, Google Analytics and Tag Manager for tracking, and is generated using Winston 4. Security posture is good with HTTPS enabled, but lacks security headers and explicit privacy and cookie policies, which are compliance gaps. No vulnerabilities or suspicious activities were detected. Overall, the domain registration is consistent with the business claims, indicating legitimacy and trustworthiness.

P

POVED - Plzeňský organizátor veřejné dopravy

idpk.cz

49

The website www.idpk.cz serves as the official portal for POVED - Plzeňský organizátor veřejné dopravy, the integrated public transportation organizer for the Plzeň region in the Czech Republic. It provides comprehensive information on public transport schedules, fare calculations, service updates, and related news. The site targets residents and visitors of the region seeking reliable transit information. The business operates as a regional transportation authority with a medium-sized footprint and a focus on public service. Technically, the website employs modern web technologies including HTTPS, Google Analytics, Google Tag Manager, and Cookiebot for cookie consent management. The site is well-structured with good mobile optimization and basic accessibility features. Performance is moderate with no significant technical debt detected. The use of reCAPTCHA indicates attention to bot mitigation. From a security perspective, the site enforces HTTPS and uses a Content-Security-Policy header to upgrade insecure requests. Cookie consent is actively managed, and tracking scripts are loaded with user consent. However, additional security headers such as HSTS, X-Frame-Options, and Referrer-Policy could enhance security posture. No vulnerabilities or exposed sensitive data were detected in the analysis. Overall, the website demonstrates a solid security and privacy posture appropriate for a public transportation service. The lack of WHOIS data is likely due to privacy protection and does not detract from the site's legitimacy. Strategic recommendations include enhancing security headers, publishing a security policy, and improving accessibility compliance to further strengthen trust and compliance.

The website 'Člověk VS silnice' operated by Tým silniční bezpečnosti is a Czech Republic based non-profit platform focused on road safety education and awareness. It targets general road users, motorcyclists, and safety advocates by providing educational content on topics such as first aid, seatbelt usage, and reaction times. The site maintains partnerships with various organizations to support its mission. Technically, the website uses modern JavaScript libraries including jQuery, Foundation Sites framework, and integrates Google Analytics and Facebook Pixel for analytics and marketing. The site is mobile optimized and provides a cookie consent mechanism compliant with GDPR principles, although it lacks explicit privacy policy and terms of service pages. Security posture is moderate with HTTPS enabled but missing security headers and explicit incident response contacts. Overall, the domain registration data supports legitimacy with consistent WHOIS information and an appropriate domain age. The website is safe for general audiences with no adult or questionable content detected.

A

ALTIMA LZ s.r.o.

altima.cz

47

ALTIMA LZ s.r.o. operates the website altima.cz, specializing in the retail of reflective safety products such as bands, vests, and patches designed to enhance visibility and safety for pedestrians, cyclists, children, and pets. The company holds a strong market position in the Czech Republic, emphasizing product quality and compliance with European safety standards. The website is well-structured, mobile-optimized, and integrates modern technologies including jQuery, Bootstrap, Google Analytics, and Facebook SDK, supported by a comprehensive cookie consent mechanism. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though security headers and incident response policies are absent. The lack of WHOIS data for the domain reduces trustworthiness and should be investigated further. Overall, the site presents a professional and trustworthy e-commerce platform with room for improvement in transparency and security documentation.

Tým silniční bezpečnosti (TSB) is a Czech non-profit organization operating under Bezpečně na silnicích o.p.s. since 2010, focused on reducing serious traffic accidents through preventive programs and educational activities. The organization targets a broad audience including children, seniors, and cyclists, delivering road safety education and awareness campaigns. The website reflects a well-established brand with multiple projects and partnerships with reputable entities such as Škoda Auto and the Czech Police. Technically, the site uses modern web technologies including jQuery, Foundation framework, and integrates Google Analytics and Facebook Pixel for analytics and marketing purposes. The site is mobile-optimized and provides a cookie consent mechanism compliant with GDPR principles, although explicit privacy and terms of service documents are not found. Security posture is good with HTTPS enforced and consent revocation scripts, but lacks visible security headers and formal incident response information. Overall, the domain registration aligns with the organization's profile, supporting legitimacy and trustworthiness.

V

Výstaviště Flora Olomouc, a.s.

flora-ol.cz

47

Výstaviště Flora Olomouc, a.s. is a regional exhibition and event management company based in Olomouc, Czech Republic. The company operates multiple subdomains dedicated to exhibitions, services, and park management, targeting general public visitors interested in cultural, botanical, and event experiences. Their market position is strong regionally, offering a variety of services including event hosting, park maintenance, and rentals. The website is professionally designed with clear navigation and multilingual support, reflecting a mature digital presence. Technically, the site uses modern frameworks such as Bootstrap, integrates Google Tag Manager, Facebook Pixel, and Google reCAPTCHA for analytics and security, and implements GDPR-compliant cookie consent mechanisms. Security posture is good with HTTPS enforced and no obvious vulnerabilities, though security headers and incident response information are lacking. The absence of WHOIS data is a concern for domain legitimacy verification but does not detract from the professional presentation and contact transparency. Overall, the site is trustworthy, well-maintained, and compliant with privacy regulations.

E

EGAP

egap.cz

60

EGAP.cz is the official website of the Czech Export Guarantee and Insurance Corporation, a government-backed entity providing export credit insurance and risk management services to Czech exporters and financial institutions. The website offers comprehensive information about their products, services, and organizational structure, targeting Czech exporters and related stakeholders. The site is bilingual (Czech and English) and professionally designed with clear navigation and relevant content. Technically, the website is built on Drupal 7 CMS, utilizing modern frontend libraries such as Bootstrap and jQuery, with analytics tools including Google Analytics and Smartlook for user behavior tracking. Security posture is generally good with HTTPS enforced and anonymized IP tracking, though some security headers could be improved. Privacy and cookie policies are present and indicate GDPR compliance. However, the absence of WHOIS data limits domain registration trust assessment, though the website content and presentation strongly suggest legitimacy as a government entity. Overall, the site is professional, secure, and suitable for its target audience.

Daňový poradce Brno - Marek Hanáček is a small, locally focused tax advisory and accounting service provider operating primarily in Brno and Uherské Hradiště, Czech Republic. The business offers a comprehensive range of tax and accounting services including tax return preparation, accounting management, payroll processing, and client representation before tax authorities. The website reflects a professional service with clear contact information and a user-friendly design. Technically, the site is built on WordPress using Elementor and Astra theme, with integration of Google Analytics, Tag Manager, and reCAPTCHA for security on contact forms. Security posture is good with HTTPS and reCAPTCHA, but lacks some advanced security headers and formal security policies. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the site is trustworthy and well-positioned for its target market.

G

GLOB-TRADE td, s.r.o.

globetrade.cz

44

GLOB-TRADE td, s.r.o. is a Czech-based company specializing in the sale, installation, and servicing of garage doors, entrance gates, barriers, and related parking systems, primarily as an authorized dealer of Hörmann products since 2002. The company targets both residential and commercial customers within the Czech Republic, offering a comprehensive product range including garage doors, industrial doors, gates, shutters, and custom locksmith metalwork. Their business model combines direct sales, professional consultation, and after-sales service, supported by an e-commerce platform. The website reflects a medium-sized enterprise with a consistent brand presence and recognized certifications such as ISO 9001.

M

METRANS a.s.

metrans.eu

60

METRANS a.s. is a leading European logistics company specializing in intermodal transport solutions, terminal and depot services, rail logistics, and container handling. As a member of the HHLA Group, METRANS leverages a powerful intermodal network to serve business customers across Europe. The website reflects a mature digital presence with a professional design, comprehensive service offerings, and multiple customer engagement portals. Technically, the site is built on WordPress with Elementor, uses modern JavaScript libraries, and integrates Google Analytics for performance and user insights. Security posture is strong with HTTPS, security headers, and GDPR-compliant cookie consent mechanisms. No critical vulnerabilities or suspicious activities were detected. Overall, the site demonstrates a high level of professionalism, trustworthiness, and compliance suitable for a large enterprise in the transportation sector.

Z

ZDV Fryšták

zdv.cz

60

ZDV Fryšták is a progressive agricultural cooperative based in the Czech Republic, specializing in agricultural production, repair of heat exchangers and auto aggregates, retail food sales, and fuel station services. The company targets local agricultural businesses and consumers, offering diversified services including employment opportunities in agriculture and mechanics. The website reflects a regional market position with a medium-sized business profile. Technically, the site is built on the Webnode CMS platform, leveraging Cloudfront CDN for content delivery and Google Analytics for user tracking with IP anonymization enabled. The website is accessible, uses HTTPS, but lacks advanced security headers and privacy policies, indicating room for improvement in compliance and security posture. Contact information is clearly presented, enhancing business credibility. Overall, the site is functional with basic mobile optimization and SEO, suitable for its business scope.

E

eUbytko.cz

eubytko.cz

55

eUbytko.cz is an established online accommodation booking platform focused on the Czech Republic market. It offers a wide range of lodging options including apartments, pensions, hotels, cottages, and wellness resorts, targeting tourists and travelers seeking vacation stays within the country. The website features rich content, including categorized accommodation listings, travel guides, and blog articles, enhancing user engagement and decision-making. Technically, the site employs modern JavaScript libraries such as jQuery, Owl Carousel, and Google Tag Manager, with asynchronous script loading to optimize performance. SEO is supported through structured data (JSON-LD) and Open Graph metadata, improving search engine visibility. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though explicit privacy and terms of service pages are not clearly found. The WHOIS data is privacy protected, which is common and justified for this business type. Overall, the site demonstrates a mature digital presence with good usability and trust indicators.

H

Hotel Kraví Hora

kravihora.cz

49

Hotel Kraví Hora is a small hospitality business located in Bořetice, Czech Republic, specializing in accommodation, dining, conference hosting, wellness, and wine tourism services. The website presents a professional and consistent brand image targeting corporate teams, sports clubs, couples, families, and groups interested in wine and leisure experiences in the South Moravian region. The business leverages partnerships with local wine producers and regional tourism organizations to enhance its market position. Technically, the website uses a custom CMS by ActiveMedia and incorporates modern JavaScript libraries such as jQuery and Google Tag Manager for analytics and marketing. The site is mobile-optimized, accessible, and SEO-friendly, with a moderate performance profile. Cookie consent and privacy policies are implemented in compliance with GDPR, reflecting a good level of digital maturity. From a security perspective, the site enforces HTTPS and employs cookie consent mechanisms but lacks publicly available security policies or incident response contacts. No critical vulnerabilities or exposed sensitive data were detected. The absence of WHOIS data due to privacy protection limits transparency but is typical for small hospitality businesses. Overall, the website is trustworthy and professionally maintained, with recommendations to enhance security posture by publishing security policies, incident response information, and adding security headers. Continued monitoring of third-party scripts and compliance with privacy regulations is advised.

W

Wellness hotel U Langrů

ulangru.cz

59

Wellness hotel U Langrů is a family-owned hospitality business located in South Moravia, Czech Republic, offering accommodation, wellness services, a restaurant with wine cellar, and event hosting. The website presents a professional image with clear business information, targeting tourists and corporate clients seeking wellness and event facilities in the Pálava region. The business has a history dating back to 1996 and expanded its offerings over time, including wellness and wine tasting services. Technically, the website is built on WordPress using modern plugins and builders, with good SEO and mobile optimization. Security posture is adequate with HTTPS and cookie consent mechanisms, though additional security headers could improve protection. Privacy compliance is well addressed with GDPR and cookie policies. The absence of WHOIS data reduces domain trust but does not detract from the apparent legitimacy of the business. Overall, the site is trustworthy, user-friendly, and professionally maintained.

N

NEVECOM

nevecom.cz

52

NEVECOM is a Czech automotive dealership and service provider specializing in authorized sales and servicing of Renault and Dacia vehicles, along with offering used and certified pre-owned cars including Škoda and other brands. With over 27 years of experience, the company positions itself as an independent mobility provider offering comprehensive vehicle sales, maintenance, accident repairs, and rental services. The website reflects a professional and consistent brand image targeting vehicle buyers and owners in the Czech Republic. Technically, the site is built on Omnio CMS, uses modern JavaScript libraries like jQuery, and integrates Google Analytics and advertising retargeting services. It is mobile-optimized and provides clear navigation and relevant content. Security posture is good with HTTPS enforced and cookie consent implemented, though security headers and explicit policies could be improved. WHOIS data is unavailable, which limits domain trust assessment, but the website content and business information appear legitimate and professional.

I

Mobilní app

inforymarov.cz

44

The website 'inforymarov.cz' is a Czech language site titled 'Mobilní app' that appears to be a small-scale business or project with a domain registered since 2013. The site uses a modern Angular 7.1.4 frontend framework and integrates several third-party services including Google Analytics, Google Tag Manager, Google Identity Services, and Packeta widget for logistics or shipping. The technical infrastructure is moderately modern but lacks visible backend or CMS indicators. Security posture is basic with no detected security headers or published security policies, and no contact or privacy information is provided, which limits trust and compliance. The site content is minimal and lacks descriptive business information, contact details, or legal policies, which impacts business credibility and user trust. Overall, the site is accessible without WAF or blocking mechanisms, but improvements in privacy compliance, security headers, and business transparency are recommended.

M

Martin Winkler

martinwinkler.cz

45

Martin Winkler is a seasoned freelance web developer based in Brno, Czech Republic, offering professional web design, responsive HTML coding, WordPress CMS development, and custom e-shop creation services. With 17 years of experience, the business emphasizes reliability, speed, and clarity in delivering client projects. The website showcases a comprehensive portfolio of completed projects and client references, positioning the company as a trusted local expert in web development services. Technically, the website is built on WordPress with modern web technologies including HTML5, CSS3, JavaScript, and SVG graphics. It integrates Google Analytics for visitor tracking and Google reCAPTCHA for form security. The site is well-optimized for mobile devices, fast loading, and includes a cookie consent mechanism compliant with GDPR principles, although no explicit privacy policy page was found. From a security perspective, the site uses HTTPS with a strong SSL configuration and implements best practices such as automated backups and quarterly manual updates. However, explicit security headers are not detected, and no published security or incident response policies exist. The absence of WHOIS data limits domain registration transparency but does not detract from the professional presentation and trustworthiness of the business. Overall, the website demonstrates a high level of professionalism, technical maturity, and security awareness suitable for a small freelance business. Strategic improvements include publishing privacy and security policies, enhancing security headers, and improving transparency around domain registration to further strengthen trust and compliance.

P

Prague Convention Bureau z.s.

pragueconvention.cz

62

Prague Convention Bureau z.s. is a prominent non-profit organization dedicated to promoting Prague as a premier destination for meetings, incentives, conferences, and exhibitions (MICE). The website serves as a comprehensive resource for event planners, offering venue finders, event planning guidance, and information on health, safety, and sustainability. The organization positions itself as a key facilitator for hybrid, virtual, and onsite events in Prague, targeting corporate clients and tourism professionals. The site is professionally designed with consistent branding and clear navigation, reflecting a mature digital presence.

M

Městské informační centrum Kolín

kolinzije.cz

49

Kolín žije is an official municipal portal dedicated to tourism, culture, and leisure activities in the city of Kolín, Czech Republic. It provides comprehensive information about local events, gastronomy, accommodation, and practical tips for visitors and residents. The website is operated by the city's information center and serves as a key digital touchpoint for promoting local culture and tourism. The portal maintains a consistent brand identity aligned with the city and integrates social media channels to enhance community engagement. Technically, the site is built on the Vismo CMS platform, leveraging modern web technologies including Google Tag Manager, Google Analytics, and OpenWeatherMap API for weather updates. The site is mobile-optimized, accessible, and SEO-friendly, ensuring a good user experience across devices. Security-wise, the website enforces HTTPS, implements cookie consent mechanisms compliant with GDPR, and avoids exposing sensitive data. However, it lacks a published security policy and incident response contacts, which are recommended for enhanced trust and compliance. Overall, the site demonstrates a solid digital presence with moderate tracking and good privacy practices, suitable for its government and tourism-focused mission.